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IN THE CLAIMS 
Please amend the claims as indicated: 

1. (curreotly amended) A process for accessing a non-Enterprise JavaBeaji (EJB) Common 
Object Broker Request Axchitecture (CORBA) object method on a server, said process 
comprising: 

receiving at the server a request for the non-EJB CORBA object method; 

directing said request to a shadow EJB object method, said shadow EJB object method 
being a complementary method to the non-EJB CORBA object metho d, wherein the shadow EJB 
object method is incapable of perfoiming any function other than accessing an EJB security 
system itx response to a request for the shadow EJB object method, thus enabling aq 
authoiization for a specijSc requesting user to access a non-BXB CORBA object that contains the 
non-EJB CORBA obfect method : and 

obtaining authorization from [[a security service]] thc_EIB security system to access the 
non-EJB CORBA object method based on [[a role of a requesting user]] an authorization for the 
specific requestijxg user to access the shadow EJB object . 

2. (currently amended) The process of claim 1, wherein the server has access to said non- 
EJB CORBA object method and a non-shadow EJB object method. 

3. (currently amended) The process of claim 1, further comprising: 

receiving an assigned user role for a requesting user of a client computer connected to the 

server; 

storing said user role in the server; 

generating a method-role mapping table to dejSne an authorized role to access said non- 
BJB CORBA object method; and 

comparing said assigned user role with said authorized role to determine if said 
requesting user is authorized to access said non-EJB CORBA object method. 
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4. (currently anaended) A computer system server for providing a non-Enterprise JavaBean 
(EJB) Common Object Broker Request Architecture (CORBA) object method, said computer 
system server comprising: 

means for receiving at the computer system server a request from a requesting user for 
the non-EJB CORBA object method; 

means for directing said request to a shadow EJB object method, said shadow EJB object 
method being a complementary method to the non-EJB CORBA object metho d, wherein the 
shadow EJB object method is incapable of performing any function other than accessing an EJB 
security system in response to a request for the shadow EJB obiect method, thus enabling an 
authorization for a specific requesting user to access a non-EJB CORBA obiect that contains Are 
non-EJB CORBA object niethod ; and 

means for obtainitxg authorization jfrom [[a security service]] the EJB security system to 
access the non-EJB CORBA object method based on [[a role of a requesting user]] an 
authorization for the specific requesting user to access the shadow EJB obiect . 

5. (currently amended) The computer system server of claim 4, wherein the computer 
system server has access to said non-EJB CORBA object method and a non-shadow EJB object 
method. 

6. (currently amended) The computer system server of claim 4, further comprising: 

means for receiving a user role for a requesting user of a client comjiuter connected to the 
computer system server; 

means for storing said user role in the computer system server; 

means for generating a method-role mapping table to dejBine an authorized role to access 
said non-EJB COKBA object method; and 

means for comparing said user role with said authorized role to deteradne if said 
requesting user is authorized to access said non-EJB CORBA object method. 

7. (currently amended) A computer program product, residing on a tangible computer 
usable medium, for accessing a non-Enterprise JavaBean (EJB) common Object Broker Request 
Architecture (CORBA) object method on a server, said computer program product comprising: 
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program code means for receiving at a server a request jScom a requesting user for a non- 
BJB CORBA object method; 

program code means for directing said request to a shadow EJB object method, said 
shadow EJB object method being a complementary method to the non-ETB CORBA object 
metho d, wherein the shadow EJB object method is incapable of nerfoiming any function other 
than accessing an EJB security system in response to a request for the shadow EJB object 
method, thus enabling an authorization for a specific requesting user to access a non-EJB 
CORBA object that contains the non-EJB COKBA object method ; and 

program code means for obtaining authorization from [[a security service]] the EJB 
security system to access the non-EJB CORBA object method based on [[a role of a requesting 
ns&x:]] an authorization for the specific tequesting user to access the shadow EJB object . 

8. (currently amended) The computer program product of claim 7, wherein said server has 
access to said non-EJB CORBA object method and a non-shadow EJB object method. 

9. (currently amended) The computer program product of claim 7, further comprising: 

program code means for receiving an assigned user role for a requesting user of a client 
computer connected to the server; 

program code means for storing said user role in the server; 

program code means for generating a method-role mapping table to define an authorized 
role to access said non-EJB CORBA object method; and 

program code mean$ for comparing said assigned user role with said authorized role to 
detennine if said requesting user is authorized to access said non-EJB CORBA object method. 

1 0. (new) The method of claim 1, wherein the authorization is based on a role of the specific 
requesting user, wherein the role is based on the specific requesting user's job description in an 
enterprise. 

1 1 . (new) The computer system server of claim 4, wherein the authorization is based on a 
role of the specific requesting user, wherein the role is based on the specific requesting user's job 
description in an enterprise. 
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12. (new) The computer program product of claim 1, wherein the authorization is based on a 
role of the specific requesting user, wherein the role is based on the specific requesting user's job 
description in an enterprise. 



AUS920010981US1 - Anwndment A 



10/068,335 



-5- 



PAGE 7/10 ' RCVD AT 1 m05 2:39:29 PM [Eastern Standard Tim^^ 



